google-ads-api-quickstart

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.85). The required runtime workflow includes dynamic version resolution by fetching/reading public Google documentation and GitHub release content (e.g., release notes and client-libs pages) via URL-reading/web search tools, which can ingest outsider-authored free text into the agent’s LLM context.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 1.00). This skill mandates runtime scraping of authoritative docs to dynamically resolve API and library/runtime versions (e.g., https://developers.google.com/google-ads/api/docs/release-notes.md.txt and https://developers.google.com/google-ads/api/docs/client-libs.md.txt#supported_api_versions and the GitHub directory https://github.com/googleapis/googleapis/tree/master/google/ads/googleads), and those fetched values are required and directly drive on-the-fly placeholder substitution in generated code/configuration, so these URLs are runtime external dependencies that control the agent's output.